| Title | gpac contains buffer overflow in filters/load_text.c:353:14 |
|---|
| Description | ## version
MP4Box - GPAC version 2.3-DEV-rev35-gbbca86917-master
(c) 2000-2023 Telecom Paris distributed under LGPL v2.1+ - http://gpac.io
Please cite our work in your research:
GPAC Filters: https://doi.org/10.1145/3339825.3394929
GPAC: https://doi.org/10.1145/1291233.1291452
GPAC Configuration: --enable-sanitizer --enable-debug
Features: GPAC_CONFIG_LINUX GPAC_64_BITS GPAC_HAS_IPV6 GPAC_HAS_SOCK_UN GPAC_MINIMAL_ODF GPAC_HAS_QJS GPAC_HAS_LINUX_DVB GPAC_DISABLE_3D
## reproduce
./configure --enable-sanitizer
make
./MP4Box -info poc
## asan information
filters/load_text.c:353:14: runtime error: index 2048 out of bounds for type 'char [2048]' |
|---|
| Source | ⚠️ https://github.com/gpac/gpac/issues/2386 |
|---|
| User | Tmotfl (UID 41304) |
|---|
| Submission | 03/14/2023 13:08 (3 years ago) |
|---|
| Moderation | 03/17/2023 07:50 (3 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 223297 [GPAC 2.3-DEV-rev35-gbbca86917-master filters/load_text.c buffer overflow] |
|---|
| Points | 20 |
|---|